VYPR

BMPlanning

by BM SOFT

CVEs (1)

  • CVE-2024-28298HigAug 2, 2024
    risk 0.57cvss 8.8epss 0.00

    SQL injection vulnerability in BM SOFT BMPlanning 1.0.0.1 allows authenticated users to execute arbitrary SQL commands via the SEC_IDF, LIE_IDF, PLANF_IDF, CLI_IDF, DOS_IDF, and possibly other parameters to /BMServerR.dll/BMRest.